Dear subscribers
Short time after the release of the stable version 1.4.0 of Roundcube
Webmail we already publish the first service release. With the recent
release we missed to mention a few breaking changes since the last stable
version 1.3. We apologize for this and are now clarifying and correcting
these:
Breaking changes
----------------
(since 1.3.x)
* new defaults for smtp_* config options:
Upon many requests and in order to get closer to the default setup of most
SMTP servers, we changed the defaults as follows:
// SMTP port (default is 587)
$config[‘smtp_port’] = 587;
// SMTP username (if required). %u will use the current username for login
$config[‘smtp_user’] = ‘%u’;
// SMTP password (if required). %p will use the current user’s password
for login
$config[‘smtp_pass’] = ‘%p’;
* changed default password_charset to UTF-8:
Because of many complaints, we decided to choose a more sane default that
covers most setups and configurations.
* login page returning 401 Unauthorized status:
The new behavior that Roundcube 1.4 returns a 401 status code if the client
is not authenticated apparently was very unexpected and lead to monitoring
problems. Despite not having mentioned that change in the release notes, we
now partly reverted it so that 401 is only returned on login failures but
not on the first request to Roundcube which by definition is unauthorized.
Besides these three major concerns we heard from your much appreciated
feedback, we fixed a number of nasty bugs that sneaked into the 1.4.0
release. See the full changelog in the release notes on the Github download
page [1].
This release is considered stable and we recommend to update all productive
installations of Roundcube with this version. Download it from roundcube.net
[2].
Please do backup your data before updating.
We'd also like to thank Phil for his steady efforts to keep our website
up-to-date. Your work is much appreciated!
Best,
Thomas & Alec
[1] https://github.com/roundcube/roundcubemail/releases/tag/1.4.1
[2] https://roundcube.net/download
Dear subscribers
It's a big honor for me to announce the final release of the long awaited
major version 1.4 of Roundcube webmail.
After more than two years of hard work by Alec and other volunteer
contributors, Roundcube finally gets the responsive skin with full mobile
device support - the Elastic.
In addition to the new UI we introduce these new features:
* Email Resent (Bounce) feature
* Improved [Mailvelope](https://www.mailvelope.com) integration
* Support for Redis and Memcached cache
* Support for SMTPUTF8 and GSSAPI
Plus numerous improvements and bug fixes collected from your precious
feedback as well as updates to recent versions of 3rd party libraries like
jQuery and TinyMCE. See the full changelog in the release notes on the
Github download page [1].
The new Elastic theme, which is the new default skin, is built with LESS
and of course the sources are included. They allow a certain degree of
customization by adjusting some colors and variables using the
`_styles.less` and `_variables.less` files. Please consider customizing
your Roundcube installation in order to make phishing [2] harder. You'll
find guidance in the README.md file inside the skin folder.
This release is considered stable and we encourage you to update your
productive installations after carefully testing the upgrade scenario and
preparing your users to the significant changes in their webmail UI.
Download it from https://roundcube.net/download.
With the release of Roundcube 1.4.0, the previous stable release branches
1.3.x and 1.2.x will change into LTS low maintenance mode which means they
will only receive important security updates but no longer any regular
improvement updates. The 1.1.x series is no longer supported and maintained.
Kind regards,
Thomas
[1] https://github.com/roundcube/roundcubemail/releases/tag/1.4.0
[2] https://roundcube.net/news/2019/10/28/phishing-alert